Back to news

September 20, 2018 | International, C4ISR

Shanahan: cybersecurity will become new measure for industry

By:

NATIONAL HARBOR, Md. – The Pentagon is preparing to press the defense industry to increase its cyber security, with Deputy Secretary of Defense Patrick Shanahan saying it will become a key measurement for how industry is judged by the department.

“This is a public service announcement for those of you from industry, especially for those of you that are in the, I'll call it, higher tiers,” Shanahan told an audience at the annual Air Force Association conference Wednesday.

“Cybersecurity is, you know, probably going to be what we call the ‘fourth critical measurement.' We've got quality, cost, schedule, but security is one of those measures that we need to hold people accountable for,” he said.

“We're going to work with our industrial partners to help them be as accountable for security as they are for quality. And it shouldn't be that being secure comes with a big bill. It's just like we wouldn't pay extra for quality. We shouldn't pay extra for security.”

The responsibilities of primes goes beyond just ensuring their own internal cyber security, in Shanahan's eye. The former Boeing executive laid down the gauntlet to the biggest industrial partners, saying flatly it is part of their job to make sure the lower-tier supplier are secure as well.

“I'm a real strong believer that the Tier 1 and Tier 2 leadership has a responsibility to manage the supply chain. And that's where we have real gaps,” he said. “Security is the standard. It's the expectation. It's not something that's above and beyond what we've done before.”

In recent years the Pentagon has been increasingly vocal about its concerns that lower-tier suppliers are not as secure digitally as they need to be; unsecured parts from those suppliers can then be incorporated into larger projects, potentially with vulnerabilities that would not be discovered until it is too late.

To try and address that, the Pentagon has been looking at a plan to launch red team cyber attackson industrial partners, in which a cell would test vulnerabilities and try to penetrate the contractors' systems, in order to identify weaknesses.

https://www.fifthdomain.com/digital-show-dailies/air-force-association/2018/09/19/shanahan-cyber-security-will-become-fourth-critical-measurement-for-industry

On the same subject

  • Report: Army’s new modernization command risks cost overruns and delays

    January 24, 2019 | International, Land

    Report: Army’s new modernization command risks cost overruns and delays

    By: Meghann Myers When the Army first announced its intention to stand up a new four-star Futures Command, senior leadership said the days of years-long, expensive modernization programs and murky requirements were over. While failing early and often can prevent some of those issues before an idea becomes a program of record, there are still some risks that, by trying to be a more nimble and innovative enterprise, AFC could still run into cost increases and drawn-out timelines if it jumps too hard on emerging technologies, according to a Government Accountability Office report released Wednesday. “There are a variety of ways to fail when it comes to developing these technologies,” Jon Ludwigson, the GAO's acting director of contracting and national security acquisitions, told Army Times in a Wednesday phone interview. “I guess the way that I would look at it is, you can make sure that you have it right, or hope that you'll get it right.” The study was mandated by the 2018 National Defense Authorization Act, to take the temperature of Futures Command as it stood up. The Army officially activated the command in August, headquartered at the University of Texas in Austin. In general, the report found, the Army has applied best practices that GAO has previously touted, including close collaboration with senior leadership. On the other hand, the report found, there were a couple things that could be improved. AFC's plans to develop weapons systems with emerging technology could come back to hurt it, the report said. “GAO has raised concerns about this type of practice for almost two decades for other Army acquisitions, because proceeding into weapon systems development at earlier stages of technology maturity raises the risk that the resulting systems could experience cost increases, delivery delays, or failure to deliver desired capabilities,” according to the report. The GAO, Lugwigson said, is wary of creating programs around emerging technologies, before having a chance to test them in an operational environment. “As the Army identifies the capability, there are technologies that are used to achieve that capability,” he said. “What GAO has found is, there's an advantage to maturing those technologies before you begin what's called a program of record.” https://www.armytimes.com/news/your-army/2019/01/23/report-armys-new-modernization-command-risks-cost-overruns-and-delays

  • Space Reverse Industry Event

    January 9, 2024 | International, Aerospace

    Space Reverse Industry Event

    NATO is expanding its space radar to build closer relations with space industries. NATO is inviting the commercial space sector to its Space Reverse Industry Event on 20 February 2024 in Brussels to give a new impetus to dialogue and engagement with this growing sector.

  • The F-15 fighter jet is having a second spring in Asia

    November 21, 2024 | International, Land

    The F-15 fighter jet is having a second spring in Asia

    South Korea is in line for major upgrades to its fleet, while Indonesia has signaled interest in the warplane type.

All news